Security updates for Thursday
Security updates for Thursday
Arch Linux has updated curl (information leak).
Debian-LTS has updated dulwich (code execution), eglibc (code execution), exactimage (denial of service), and libnokogiri-ruby (information disclosure from 2012).
Fedora has updated ca-certificates (F20: CA update), hostapd (F21; F20: denial of service), java-1.8.0-openjdk (F20: insecure tmp file use), LibRaw (F21: denial of service), mingw-LibRaw (F21: denial of service), openslp (F20: two denial of service flaws, one from 2010, one from 2012), php (F21; F20: multiple vulnerabilities), postgresql (F22: three vulnerabilities), and rawtherapee (F22: denial of service).
Mageia has updated fuse (privilege escalation), kernel-linus (denial of service), and kernel-tmb (denial of service).
openSUSE has updated glibc, glibc-testsuite, glibc-utils, glibc.i686 (13.2, 13.1: two vulnerabilities).
SUSE has updated firefox (SLE12: multiple vulnerabilities).